A linux kernel security update has been released for Debian GNU/Linux 10 to address several vulnerabilities in the Linux kernel that may lead to the execution of arbitrary code, privilege escalation, denial of service or information leaks.
A new XanMod Linux Kernel based on Linux Kernel 5.9.1 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
A thunderbird security update has been released for Debian GNU/Linux 9 LTS to address multiple security issues in Thunderbird, which may lead to the execution of arbitrary code or denial of service.
A yaws security update security update has been released for Debian GNU/Linux 10 two fix two vulnerabilities in yaws, , a high performance HTTP 1.1 webserver written in Erlang.
A tomcat8 security update has been released for Debian GNU/Linux 10 to address an issue where excessive number of concurrent streams could have resulted in users seeing responses for unexpected resources.
A jackson-databind security update has been released for Debian GNU/Linux 9 LTS to address an external entity expansion vulnerability in jackson-databind.
A httpcomponents-client security update has been released for Debian GNU/Linux 10 to address an issue where HttpComponents could misinterpret a malformed authority component in a request URI and pick the wrong target host for request execution.
A spice-gtk security update has been released for Debian GNU/Linux 8 Extended LTS to address multiple buffer overflow vulnerabilities.
A spice security update has been released for Debian GNU/Linux 8 Extended LTS to address multiple buffer overflow vulnerabilities.
A spice security update has been released for Debian GNU/Linux 10 to address multiple buffer overflow vulnerabilities in the QUIC image decoding process of spice.
A packagekit security update has been released for Debian GNU/Linux 8 Extended LTS to address two vulnerabilities.
A httpcomponents-client security update has been released for Debian GNU/Linux 8 Extended LTS to address an issue where a malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
A httpcomponents-client security update has been released for Debian GNU/Linux 9 LTS to address an issue where a malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
A rails security update has been released for Debian GNU/Linux 9 LTS to address a potential Cross-Site Scripting (XSS) vulnerability was found in rails, a ruby based MVC framework.
A eclipse-wtp security update has been released for Debian GNU/Linux 9 LTS to address an issue where a component of the Eclipse IDE, XML and DTD files referring to external entities could be exploited to send the contents of local files to a remote server when edited or validated, even when external entity resolution is disabled in the user preferences.
A rails security update has been released for Debian GNU/Linux 8 Extended LTS to address two vulnerabilities in Rails.
Ondřej Surý has released new PHP packages for both Debian GNU/Linux 9 LTS and 10.
A squid3 security update has been released for Debian GNU/Linux 8 Extended LTS.
A sane-backends regression update has been released for Debian GNU/Linux 9 LTS to fix a regression introduced by the previous update.
A puma security update has been released for Debian GNU/Linux 9 LTS to address several security vulnerabilities in puma, a highly concurrent HTTP server for Ruby/Rack applications.
